Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B57DF/5FB443762F7311ED91ED78CCF1222468/3DA69D961BCA11F1918555C4DAE4EC9C.roa
File: 3DA69D961BCA11F1918555C4DAE4EC9C.roa (raw, json)
Hash identifier: 68AnR/th2SY3znbafBTOtTv6a61LmQOlECVH4316gFw=
Subject key identifier: 73:87:BD:75:7E:3B:2D:A7:B4:24:50:9D:3A:B8:4A:40:0C:2D:94:60
Certificate issuer: /CN=F36B57DFAF/serialNumber=8F6F6FBCA3C634CDBFF04C72E9B0EC806F983CA8
Certificate serial: 052E
Authority key identifier: 8F:6F:6F:BC:A3:C6:34:CD:BF:F0:4C:72:E9:B0:EC:80:6F:98:3C:A8
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/j29vvKPGNM2_8Exy6bDsgG-YPKg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B57DF/5FB443762F7311ED91ED78CCF1222468/3DA69D961BCA11F1918555C4DAE4EC9C.roa
Signing time: Mon 09 Mar 2026 15:11:26 +0000
ROA not before: Mon 09 Mar 2026 15:11:21 +0000
ROA not after: Sun 09 Mar 2036 15:11:21 +0000
asID: 328533
IP address blocks: 102.36.208.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B57DF/5FB443762F7311ED91ED78CCF1222468/j29vvKPGNM2_8Exy6bDsgG-YPKg.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B57DF/5FB443762F7311ED91ED78CCF1222468/j29vvKPGNM2_8Exy6bDsgG-YPKg.mft
rsync://rpki.afrinic.net/repository/afrinic/j29vvKPGNM2_8Exy6bDsgG-YPKg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:07:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1326 (0x52e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B57DFAF, serialNumber=8F6F6FBCA3C634CDBFF04C72E9B0EC806F983CA8
Validity
Not Before: Mar 9 15:11:21 2026 GMT
Not After : Mar 9 15:11:21 2036 GMT
Subject: CN=69aee31e-93b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8f:bd:7b:0f:b7:7a:49:46:f3:9b:da:b2:78:
5a:68:65:5b:59:d9:db:fe:73:11:33:46:85:c6:44:
7e:5d:65:36:6c:b1:f3:99:bf:be:4f:2e:03:24:a3:
13:e4:6c:9e:f2:0b:5f:6b:46:5b:75:43:4f:f0:36:
97:e0:aa:68:1b:db:05:bc:7a:1d:62:d1:a9:69:23:
5d:46:43:25:a9:06:15:92:fe:28:ae:b2:2e:97:72:
ac:4f:9c:4c:69:60:4f:29:a2:1e:73:61:62:66:62:
10:22:08:6a:b0:99:15:38:82:c0:d6:63:2e:27:f4:
5f:1e:c3:a3:05:35:ce:20:25:8d:9a:6b:c5:45:ad:
56:c0:09:1a:8f:83:42:55:3c:f6:19:8b:3a:31:2b:
38:30:c6:e8:bf:95:45:49:45:0e:68:ce:ef:dc:74:
d9:82:a7:3d:74:f7:22:00:47:3e:f9:3c:2c:ba:24:
a8:94:a7:1d:4c:47:29:3b:f3:b1:c6:ac:1d:5f:73:
0c:72:97:cc:95:f2:3e:26:3a:c3:bb:5a:03:30:bd:
87:e9:67:06:93:2a:13:96:7d:00:a4:c6:00:5d:68:
54:59:1d:d5:6b:25:ec:0a:24:12:44:35:70:ec:ea:
8c:77:17:4d:15:37:e2:9d:44:87:22:0a:2f:2f:24:
52:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:87:BD:75:7E:3B:2D:A7:B4:24:50:9D:3A:B8:4A:40:0C:2D:94:60
X509v3 Authority Key Identifier:
keyid:8F:6F:6F:BC:A3:C6:34:CD:BF:F0:4C:72:E9:B0:EC:80:6F:98:3C:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B57DF/5FB443762F7311ED91ED78CCF1222468/j29vvKPGNM2_8Exy6bDsgG-YPKg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/j29vvKPGNM2_8Exy6bDsgG-YPKg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B57DF/5FB443762F7311ED91ED78CCF1222468/3DA69D961BCA11F1918555C4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.36.208.0/22
Signature Algorithm: sha256WithRSAEncryption
89:d3:86:26:e1:fd:5f:81:f7:f3:d8:c2:2a:19:66:f9:8e:9e:
8c:6b:21:fd:44:ca:be:55:d2:21:9d:6d:2e:e1:4c:9e:ce:48:
11:d1:ed:12:a9:86:01:ff:3c:17:0c:1b:92:64:b8:71:ae:11:
97:b4:c2:a9:d1:24:ab:94:95:f4:f5:13:38:61:2a:fe:03:c6:
09:45:98:2b:f6:c0:dc:82:9b:75:2c:c3:51:c9:58:d9:24:e2:
b1:1f:b6:db:66:a1:8b:d3:25:41:cd:9b:43:f1:c2:a9:da:9e:
56:ae:db:5d:aa:e1:05:cc:0e:02:7e:9c:f8:ee:2c:61:43:89:
1d:1b:67:16:65:ef:6f:5a:ba:b2:c3:9e:c6:c4:55:ab:95:ec:
97:49:70:dd:f1:73:93:2b:2f:c5:17:c0:d0:78:19:2f:2c:b4:
f4:bd:6f:b6:32:f3:87:48:8a:99:6a:e5:92:56:df:34:d5:74:
45:42:b0:0e:3d:aa:88:7a:d0:a0:56:ff:1b:26:b5:b5:32:cc:
51:92:52:95:d9:5c:61:26:8a:1f:90:c3:16:cc:f1:f2:0f:05:
b1:8b:ba:4c:a3:1a:8a:6c:20:5e:73:78:8f:13:b7:74:62:47:
76:2a:21:aa:bf:53:3e:2b:0c:f9:ec:b2:00:85:74:a0:c9:95:
37:f6:0b:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 22:18:12 2026 by rpki-client